Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php php 2.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-0257
A vulnerability was found in SourceCodester Online Food Ordering System 2.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /fos/admin/index.php?page=menu of the component Menu Form. The manipulation of the argument Image ...
Online Food Ordering System Project Online Food Ordering System 2.0
6.5
CVSSv2
CVE-2022-2297
A vulnerability, which was classified as critical, was found in SourceCodester Clinics Patient Management System 2.0. Affected is an unknown function of the file /pms/update_user.php?user_id=1. The manipulation of the argument profile_picture with the input <?php phpinfo();?&g...
Clinic\\'s Patient Management System Project Clinic\\'s Patient Management System 2.0
7.5
CVSSv2
CVE-2021-41644
Remote Code Exection (RCE) vulnerability exists in Sourcecodester Online Food Ordering System 2.0 via a maliciously crafted PHP file that bypasses the image upload filters.
Online Food Ordering System Project Online Food Ordering System 2.0
7.5
CVSSv2
CVE-2020-17952
A remote code execution (RCE) vulnerability in /library/think/App.php of Twothink v2.0 allows malicious users to execute arbitrary PHP code.
Twothink Project Twothink 2.0
7.5
CVSSv2
CVE-2020-28657
In bPanel 2.0, the administrative ajax endpoints (aka ajax/aj_*.php) are accessible without authentication and allow SQL injections, which could lead to platform compromise.
Bittacora Bpanel 2.0
7.5
CVSSv2
CVE-2021-26809
PHPGurukul Car Rental Project version 2.0 suffers from a remote shell upload vulnerability in changeimage1.php.
Phpgurukul Car Rental Portal 2.0
7.2
CVSSv2
CVE-2019-1803
A vulnerability in the filesystem management for the Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an authenticated, local attacker with administrator rights to gain elevated privileges as the root user on an affected device. Th...
Cisco Nexus 9000 Series Application Centric Infrastructure -
10
CVSSv2
CVE-2019-1804
A vulnerability in the SSH key management for the Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an unauthenticated, remote malicious user to connect to the affected system with the privileges of the root user. The vulnerability ...
Cisco Nexus 9332pq Firmware 14.0\\(3d\\)
Cisco Nexus 93180yc-ex Firmware 14.0\\(3d\\)
Cisco Nexus 93128tx Firmware 14.0\\(3d\\)
Cisco Nexus 93120tx Firmware 14.0\\(3d\\)
Cisco Nexus 93108tc-ex Firmware 14.0\\(3d\\)
Cisco Nexus 9516 Firmware 14.0\\(3d\\)
Cisco Nexus 9508 Firmware 14.0\\(3d\\)
Cisco Nexus 9504 Firmware 14.0\\(3d\\)
Cisco Nexus 9500 Firmware 14.0\\(3d\\)
Cisco Nexus 9396tx Firmware 14.0\\(3d\\)
Cisco Nexus 9396px Firmware 14.0\\(3d\\)
Cisco Nexus 9372tx Firmware 14.0\\(3d\\)
Cisco Nexus 9372px Firmware 14.0\\(3d\\)
1 Article
6.8
CVSSv2
CVE-2019-1590
A vulnerability in the Transport Layer Security (TLS) certificate validation functionality of Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an unauthenticated, remote malicious user to perform insecure TLS client authentication ...
Cisco Nx-os 14.1\\(0.90\\)
Cisco Nx-os 8.3\\(0\\)sk\\(0.39\\)
7.2
CVSSv2
CVE-2019-1592
A vulnerability in the background operations functionality of Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an authenticated, local malicious user to gain elevated privileges as root on an affected device. The vulnerability is d...
Cisco Nx-os 14.1\\(0.90\\)
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
spoof
CVE-2024-34928
CVE-2024-5291
deserialization
CVE-2024-4471
CVE-2024-4956
CVE-2024-32002
CVE-2024-5227
unspecified
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »